[TYPO3-templavoila] Giving the TO as a GET/POST parameter

Jean-Baptiste Rio triphot69 at hotmail.com
Wed Mar 15 14:21:03 CET 2006


Hi Dmitry,

Thnaks for your answer.

Dmitry Dulepov wrote:
> Passing TO in the
> URL may lead to security problems.
> 

How can it be possible ?

I'm thinking at something like 
http://www.mydomain.com/index.php?id=1252&to=29
where to <= uid of the TO object.

Could you explain me where could be the security problem ?

Regards,

JB



More information about the TYPO3-project-templavoila mailing list